TECHZONE™
Kanalga Telegram’da o‘tish
TECHZONE CYBERNEWS && UPDATES Wᴇʟᴄᴏᴍᴇ Tᴏ TECHZONE™ ✔️Infosec Facts ✔️Cheatsheets ✔️Free Courses ✔️Open source tools ✔️Tech news
Ko'proq ko'rsatish595
Obunachilar
Ma'lumot yo'q24 soatlar
Ma'lumot yo'q7 kunlar
-730 kunlar
Postlar arxiv
594
Ease the Burden with AI-Driven Threat Intelligence Reporting
https://thehackernews.com/2024/06/ease-burden-with-ai-driven-threat.html
Learn about critical threats that can impact your organization and the bad actors behind them from Cybersixgill’s threat experts. Each story shines a light on underground activities, the threat actors involved, and why you should care, along with what you can do to mitigate risk.
Cybersecurity professionals are facing unprecedented challenges as they strive to manage increasing workloads
594
RedJuliett Cyber Espionage Campaign Hits 75 Taiwanese Organizations
https://thehackernews.com/2024/06/redjuliett-cyber-espionage-campaign.html
A likely China-linked state-sponsored threat actor has been linked to a cyber espionage campaign targeting government, academic, technology, and diplomatic organizations in Taiwan between November 2023 and April 2024.
Recorded Future's Insikt Group is tracking the activity under the name RedJuliett, describing it as a cluster that operates Fuzhou, China, to support Beijing's intelligence
594
Multiple Threat Actors Deploying Open-Source Rafel RAT to Target Android Devices
https://thehackernews.com/2024/06/iranian-hackers-deploy-rafel-rat-in.html
Multiple threat actors, including cyber espionage groups, are employing an open-source Android remote administration tool called Rafel RAT to meet their operational objectives by masquerading it as Instagram, WhatsApp, and various e-commerce and antivirus apps.
"It provides malicious actors with a powerful toolkit for remote administration and control, enabling a range of malicious activities
594
ExCobalt Cyber Gang Targets Russian Sectors with New GoRed Backdoor
https://thehackernews.com/2024/06/excobalt-cyber-gang-targets-russian.html
Russian organizations have been targeted by a cybercrime gang called ExCobalt using a previously unknown Golang-based backdoor known as GoRed.
"ExCobalt focuses on cyber espionage and includes several members active since at least 2016 and presumably once part of the notorious Cobalt Gang," Positive Technologies researchers Vladislav Lunin and Alexander Badayev said in a technical report
594
Warning: New Adware Campaign Targets Meta Quest App Seekers
https://thehackernews.com/2024/06/warning-new-adware-campaign-targets.html
A new campaign is tricking users searching for the Meta Quest (formerly Oculus) application for Windows into downloading a new adware family called AdsExhaust.
"The adware is capable of exfiltrating screenshots from infected devices and interacting with browsers using simulated keystrokes," cybersecurity firm eSentire said in an analysis, adding it identified the activity earlier this month.
"
594
U.S. Treasury Sanctions 12 Kaspersky Executives Amid Software Ban
https://thehackernews.com/2024/06/us-treasury-sanctions-12-kaspersky.html
The U.S. Department of the Treasury's Office of Foreign Assets Control (OFAC) imposed sanctions against a dozen individuals serving executive and senior leadership roles at Kaspersky Lab, a day after the Russian company was banned by the Commerce Department.
The move "underscores our commitment to ensure the integrity of our cyber domain and to protect our citizens against malicious cyber
594
The long-tail costs of a data breach – Week in security with Tony Anscombe
https://www.welivesecurity.com/en/videos/long-tail-costs-data-breach-week-security-tony-anscombe/
Understanding and preparing for the potential long-tail costs of data breaches is crucial for businesses that aim to mitigate the impact of security incidents
594
Chinese Hackers Deploy SpiceRAT and SugarGh0st in Global Espionage Campaign
https://thehackernews.com/2024/06/chinese-hackers-deploy-spicerat-and.html
A previously undocumented Chinese-speaking threat actor codenamed SneakyChef has been linked to an espionage campaign primarily targeting government entities across Asia and EMEA (Europe, Middle East, and Africa) with SugarGh0st malware since at least August 2023.
"SneakyChef uses lures that are scanned documents of government agencies, most of which are related to various countries' Ministries
594
Military-themed Email Scam Spreads Malware to Infect Pakistani Users
https://thehackernews.com/2024/06/military-themed-emails-used-to-spread.html
Cybersecurity researchers have shed light on a new phishing campaign that has been identified as targeting people in Pakistan using a custom backdoor.
Dubbed PHANTOM#SPIKE by Securonix, the unknown threat actors behind the activity have leveraged military-related phishing documents to activate the infection sequence.
"While there are many methods used today to deploy malware, the threat actors
594
Oyster Backdoor Spreading via Trojanized Popular Software Downloads
https://thehackernews.com/2024/06/oyster-backdoor-spreading-via.html
A malvertising campaign is leveraging trojanized installers for popular software such as Google Chrome and Microsoft Teams to drop a backdoor called Oyster (aka Broomstick and CleanUpLoader).
That's according to findings from Rapid7, which identified lookalike websites hosting the malicious payloads that users are redirected to after searching for them on search engines like Google and Bing.
The
594
SolarWinds Serv-U Vulnerability Under Active Attack - Patch Immediately
https://thehackernews.com/2024/06/solarwinds-serv-u-vulnerability-under.html
A recently patched high-severity flaw impacting SolarWinds Serv-U file transfer software is being actively exploited by malicious actors in the wild.
The vulnerability, tracked as CVE-2024-28995 (CVSS score: 8.6), concerns a directory transversal bug that could allow attackers to read sensitive files on the host machine.
Affecting all versions of the software prior to and including Serv-U 15.4.2
594
My health information has been stolen. Now what?
https://www.welivesecurity.com/en/privacy/my-health-information-has-been-stolen-now-what/
As health data continues to be a prized target for hackers, here's how to minimize the fallout from a breach impacting your own health records
594
U.S. Bans Kaspersky Software, Citing National Security Risks
https://thehackernews.com/2024/06/us-bans-kaspersky-software-citing.html
The U.S. Department of Commerce's Bureau of Industry and Security (BIS) on Thursday announced a "first of its kind" ban that prohibits Kaspersky Lab's U.S. subsidiary from directly or indirectly offering its security software in the country.
The blockade also extends to the cybersecurity company's affiliates, subsidiaries and parent companies, the department said, adding the action is based on
594
Researchers Uncover UEFI Vulnerability Affecting Multiple Intel CPUs
https://thehackernews.com/2024/06/researchers-uncover-uefi-vulnerability.html
Cybersecurity researchers have disclosed details of a now-patched security flaw in Phoenix SecureCore UEFI firmware that affects multiple families of Intel Core desktop and mobile processors.
Tracked as CVE-2024-0762 (CVSS score: 7.5), the "UEFIcanhazbufferoverflow" vulnerability has been described as a case of a buffer overflow stemming from the use of an unsafe variable in the Trusted Platform
594
French Diplomatic Entities Targeted in Russian-Linked Cyber Attacks
https://thehackernews.com/2024/06/french-diplomatic-entities-targeted-in.html
State-sponsored actors with ties to Russia have been linked to targeted cyber attacks aimed at French diplomatic entities, the country's information security agency ANSSI said in an advisory.
The attacks have been attributed to a cluster tracked by Microsoft under the name Midnight Blizzard (formerly Nobelium), which overlaps with activity tracked as APT29, BlueBravo, Cloaked Ursa, Cozy Bear,
594
Tool Overload: Why MSPs Are Still Drowning with Countless Cybersecurity Tools in 2024
https://thehackernews.com/2024/06/tool-overload-why-msps-are-still.html
Highlights
Complex Tool Landscape: Explore the wide array of cybersecurity tools used by MSPs, highlighting the common challenge of managing multiple systems that may overlap in functionality but lack integration.Top Cybersecurity Challenges: Discuss the main challenges MSPs face, including integration issues, limited visibility across systems, and the high cost and complexity of maintaining
594
Chinese Cyber Espionage Targets Telecom Operators in Asia Since 2021
https://thehackernews.com/2024/06/chinese-cyber-espionage-targets-telecom.html
Cyber espionage groups associated with China have been linked to a long-running campaign that has infiltrated several telecom operators located in a single Asian country at least since 2021.
"The attackers placed backdoors on the networks of targeted companies and also attempted to steal credentials," the Symantec Threat Hunter Team, part of Broadcom, said in a report shared with The Hacker News
594
New Rust-based Fickle Malware Uses PowerShell for UAC Bypass and Data Exfiltration
https://thehackernews.com/2024/06/new-rust-based-fickle-malware-uses.html
A new Rust-based information stealer malware called Fickle Stealer has been observed being delivered via multiple attack chains with the goal of harvesting sensitive information from compromised hosts.
Fortinet FortiGuard Labs said it's aware of four different distribution methods -- namely VBA dropper, VBA downloader, link downloader, and executable downloader -- with some of them using a
594
Experts Uncover New Evasive SquidLoader Malware Targeting Chinese Organizations
https://thehackernews.com/2024/06/experts-uncover-new-evasive-squidloader.html
Cybersecurity researchers have uncovered a new evasive malware loader named SquidLoader that spreads via phishing campaigns targeting Chinese organizations.
AT&T LevelBlue Labs, which first observed the malware in late April 2024, said it incorporates features that are designed to thwart static and dynamic analysis and ultimately evade detection.
Attack chains leverage phishing emails that
594
Hacktivism is evolving – and that could be bad news for organizations everywhere
https://www.welivesecurity.com/en/business-security/hacktivism-evolving-bad-news-organizations-everywhere/
Hacktivism is nothing new, but the increasingly fuzzy lines between traditional hacktivism and state-backed operations make it a more potent threat
